keycloak-scim/release_notes/topics/13_0_0.adoc

= Highlights

== Default roles processing improvement

Default roles are now internally stored as composite roles of a new role usually named `default-roles-${realmName}`. Instead of assigning 
both realm and all client default roles directly to newly created users or users imported through Identity Brokering, just the role is 
assigned to them and the rest of default roles are assigned as effective roles. This change improves performance of default roles processing,
especially with larger number of clients, because it is no longer necessary to go through all clients.

== OAuth 2.0 Device Authorization Grant (RFC 8628)

Support for OAuth 2.0 Device Authorization Grant is now available. Thanks to https://github.com/wadahiro[Hiroyuki Wada], https://github.com/splatch[Łukasz Dywicki]
and https://github.com/Michito-Okai[Michito Okai].

== SAML Artifact binding in server to client communication

Keycloak now supports communication with clients using SAML _Artifact_ binding. A new `Force Artifact Binding` option
was introduced in the client configuration, that forces communication with the client using artifact messages. For more
details proceed to link:{adminguide_link}#_client-saml-configuration[{adminguide_name}]. Please note, that with
this version, Keycloak SAML client adapter does NOT support Artifact binding.

Thanks to https://github.com/AlistairDoswald[AlistairDoswald] and https://github.com/harture[harture].
KEYCLOAK-14846 default roles processing 2020-12-08 22:03:23 +00:00			`= Highlights`

			`== Default roles processing improvement`

			Default roles are now internally stored as composite roles of a new role usually named `default-roles-${realmName}`. Instead of assigning
			`both realm and all client default roles directly to newly created users or users imported through Identity Brokering, just the role is`
			`assigned to them and the rest of default roles are assigned as effective roles. This change improves performance of default roles processing,`
			`especially with larger number of clients, because it is no longer necessary to go through all clients.`
Added OAuth2 Device Grant to release notes 2021-03-16 09:03:54 +00:00
			`== OAuth 2.0 Device Authorization Grant (RFC 8628)`

			`Support for OAuth 2.0 Device Authorization Grant is now available. Thanks to https://github.com/wadahiro[Hiroyuki Wada], https://github.com/splatch[Łukasz Dywicki]`
			`and https://github.com/Michito-Okai[Michito Okai].`
KEYCLOAK-831 Modification to documentation for SAML artifact-binding 2021-03-24 09:51:28 +00:00
			`== SAML Artifact binding in server to client communication`

			Keycloak now supports communication with clients using SAML _Artifact_ binding. A new `Force Artifact Binding` option
			`was introduced in the client configuration, that forces communication with the client using artifact messages. For more`
KEYCLOAK-17824 Fix ReleaseNotes test failure 2021-04-20 13:00:55 +00:00			`details proceed to link:{adminguide_link}#_client-saml-configuration[{adminguide_name}]. Please note, that with`
			`this version, Keycloak SAML client adapter does NOT support Artifact binding.`
KEYCLOAK-831 Modification to documentation for SAML artifact-binding 2021-03-24 09:51:28 +00:00
			`Thanks to https://github.com/AlistairDoswald[AlistairDoswald] and https://github.com/harture[harture].`